Senior Manager, 03/2015 to Current PricewaterhouseCoopers, LLP – Charlotte, NC
Enterprise Systems Solutions
Partnered with organizations to design and implement security and controls designed around the COSO and COBIT control framework.
Centered around the organization's business and IT transformation, led teams through the identification of organizational, financial, and regulatory risk, and the design of related controls.
Implemented IT controls and processes focused on the use of application and security controls, and using tools with GRC and data analytic capabilities.
Led all aspects of project management including planning, scoping, budgeting, and reporting to senior leadership at client companies.
Led the growth of national team to deliver risk assurance services to clients implementing Microsoft Dynamics ERP.
This included the development of methodologies, accelerators, and client development.
Led engagements teams in the delivery of IT Audits of SOx 404 and internal controls over financial reporting focused on the testing of IT General Controls, cyber security, automated controls, and key reports in SAP ECC and SAP S4 environments.
Responsibilities included scoping of the engagement, execution of testing, and reporting to company executives and audit committee.
Collaborated with clients to design and develop cutting edge audit and compliance capabilities including robotic process automation, data analytic and visualization in Tableau, and ERP configurable controls.
Designed segregation of duties framework within GRC tools and implemented organization's control procedures around security and change management.
IT Risk & Assurance Senior Manager, 01/2007 to 03/2015 Ernst & Young, LLP – Charlotte, Toledo, NC, OH
Designed scope and testing procedures, oversaw execution of work, and prepared and delivered results and conclusions for IT audits supporting SOx 404, financial audits, information system implementations, and risk assessments at both public and privately held companies.
Responsible for managing multiple teams and audits simultaneously at various client locations, while meeting aggressive budgets and project deadlines.
Managed the execution and reporting of SSAE16 SOC1 and SOC2 reporting standards issued by Ernst & Young.
For up to 18 audit engagements and teams in a 12 month period, led the scheduling, planning, execution and reporting of the IT procedures to support the controls reliance of the financial audit.
Led pre-implementation and post-implementation reviews of at external audit clients where I evaluated the future state risk and control environment for unmitigated risks related to HR, purchasing, order to cash, record to report, material management, and inventory management.
In addition, designed testing for application controls, and evaluated the EAE related to these processes.
Implemented the use of analytics at audit clients to improve efficiency and effectiveness of testing.
Performed scheduling and budgeting of teams for up to 18 engagements in a 12 month period to balance experience and skill requirements for each team.
Served as a formal career advisor for team members.
Led cyber security audits at Fortune 500 companies.
Served clients in multiple industries including automotive, manufacturing, and consumer products.
Internal Auditor, 09/2006 to 01/2007 Dana Corporation – Toledo, OH
Internal financial staff auditor for Fortune 500 auto parts manufacturer.
Responsible for performing SOx 404 testing of financial controls
Proficient in the accounts receivables and human resource business processes at the company.
Improved documentation of workpapers year over year for review by external auditors.
Bachelor of Science: Business Administration, Accounting, 2006 Bowling Green State University - Bowling, OH
Confident, dedicated IT Risk leader with 12+ years of experience in complex, global settings across multiple industries and technologies. Career long record of promotion, stakeholder satisfaction, team-building, and strategic insight.
Accomplished in leading and executing SOx 404, IT risk assessment, and information system implementation risk and controls. Experience in designing scope and procedures of audits, evaluating and designing processes and controls, leading multiple project teams and crafting audit communication to executive leadership teams at Fortune 500 companies.
Charlotte/Northwest Ohio Chapter
2007 to Present
ISACA Charlotte Chapter - Charlotte, NC
2015 to Present
ISACA Northwest Ohio Chapter - Bowling Green, OH
2013 to 2015